Awareness programmes — no surprise invoices.
Three tiers, CHF & EUR, no setup fee. 14-day pilot without a credit card. Prices are per active user per month.
For teams up to 50 employees — self-explanatory, no onboarding needed.
per user/month · billed annually
≈ EUR 4.10 / user/month
Included
- Phishing simulation (4 campaigns/year)
- Micro-training library (DE/EN)
- Standard reports (PDF)
- Email support
- Up to 50 employees
For organisations that need to comply with NIS2 or ISO 27001.
per user/month · billed annually
≈ EUR 6.20 / user/month
Everything in Starter, plus
- Unlimited phishing campaigns
- SSO/SCIM (Entra/Google)
- NIS2 & ISO mapping
- Custom branding & sender domains
- Dedicated CSM
- Up to 500 employees
For critical infrastructure, banks, public authorities & large enterprises.
500+ employees
individual contract terms
Everything in Business, plus
- On-prem/dedicated CH instance
- SAML/OIDC + AD sync
- Audit logging & SIEM
- Custom modules
- 4h SLA + phone support + TAM
- DPA included
Prices are indicative and confirmed before contract signing.
Everything in detail.
Full feature scope for all three plans. What you don't see isn't in the plan.
| Feature | Starter | Business | Enterprise |
|---|---|---|---|
| Phishing Simulation | |||
| Campaigns per year | 4 | unlimited | unlimited |
| Custom sender domain | — | ✓ | ✓ |
| Industry-specific templates | — | ✓ | ✓ + custom |
| QR & SMS simulations | — | ✓ | ✓ |
| Training | |||
| Micro-modules (DE/EN) | ✓ | ✓ | ✓ + custom |
| Languages | DE, EN | DE, EN, FR, IT | + on request |
| Risk-based repetition | — | ✓ | ✓ |
| Certificates (PDF) | ✓ | ✓ | ✓ + seal |
| Reporting & Compliance | |||
| Standard reports | PDF + CSV | PDF + CSV + API | |
| NIS2 mapping | — | ✓ | ✓ |
| ISO 27001 (A.7.2.2) | — | ✓ | ✓ |
| SIEM integration | — | — | Splunk, Sentinel, Elastic |
| Integration & Management | |||
| SSO (SAML / OIDC) | — | ✓ | ✓ |
| SCIM provisioning | — | ✓ | ✓ |
| AD sync | — | — | ✓ |
| Privacy & Hosting | |||
| Hosting | CH multitenant | CH multitenant | dedicated / on-prem |
| DPA | Standard | Standard | custom |
| Audit logs | — | 90 days | unlimited |
| Support | |||
| Response time | 48h email | 8h business days | 4h SLA · phone |
| Onboarding advice | Self-service | 2h free | custom |
Custom requirements? Custom contract.
Critical infrastructure operators, banks, and public authorities have requirements that no standard contract covers. We operate a dedicated CH instance, sign DPAs to your templates, and deliver data into your tenant.
- Dedicated instance in Zurich or Schaffhausen
- BSI IT-Grundschutz mapping (ORP.3)
- FINMA / EBA requirements documented
- Swiss law, no US cloud
Before you sign.
+What happens after the demo?
You receive a tailored proposal with a draft DPA. No automatic renewal, no self-sign-up — we check whether we are a good fit for each other.
+Can we cancel monthly?
Starter yes, monthly with one month notice. Business and Enterprise have annual terms with cancellation 3 months before expiry.
+Where is the data stored?
Multi-tenant in CH (ISO 27001). Enterprise customers choose dedicated CH or EU instances. No data transfer to the USA.
+Is a phishing simulation legally permissible?
Yes, provided works council / staff representatives are informed. We supply template agreements for CH (OR), DE (BetrVG / GDPR Art. 88) and AT.
+What does an employee change cost?
Nothing. You pay based on the number of active employees per month — billed annually on average headcount.
+Can we trial the platform first?
14-day free pilot with up to 25 users, including one phishing simulation and 3 training modules. No credit card required.
Ready to take awareness seriously?
30-minute demo. We'll show you a real phishing campaign, a quarterly report, and the NIS2 mapping — for your industry.